AVM Consulting Inc

According to Cloudflare's 2024 Application Security report, threat actors can weaponize proof-of-concept (PoC) exploits in attacks within 22 minutes of public release. . Covering activity from May 2023 to March 2024, the report highlights an increase in scanning for disclosed CVEs, command injections, and PoC weaponization. Key targeted vulnerabilities included flaws in Apache, ColdFusion, and MobileIron products. . A notable example is CVE-2024-27198, exploited shortly after its release. Cloudflare emphasizes the need for AI to quickly develop detection rules to combat this rapid exploitation and underscores the urgency of patching systems to avoid being exploited. . The report also reveals that 6.8% of all internet traffic is DDoS-related, a rise from the previous year's 6%, with peaks reaching 12% during major attacks. ---- The firm's PDF report, available for download here - https://lnkd.in/g9Y7rZGG . . . . #avmconsulting #CyberSecurity #PoCExploits #CloudflareReport #VulnerabilityManagement #UrgentPatching #DDoS #CVE #AIinSecurity #ThreatDetection #InfoSec #CyberThreats #PatchManagement #SecurityTrends #WebSecurity #MalwareDefense

AWS Lambda now offers advanced logging controls, allowing you to capture logs in JSON format, adjust log levels, and select the CloudWatch log group for your Lambda functions. . This feature eliminates the need for custom logging libraries and enables structured logging, which simplifies searching, filtering, and analyzing logs. You can set log levels such as ERROR, DEBUG, or INFO without modifying code, aiding in efficient debugging. . Additionally, you can direct logs to a specific CloudWatch log group, streamlining log aggregation from multiple functions and applying unified security and governance policies. This feature is available in AWS GovCloud (US) Regions at no extra cost. . For more details, refer to the Lambda Developer Guide or launch blog post. ---- 👉 https://lnkd.in/gVtZTrkH . . . . #avmconsulting #AWS #Lambda #Logging #CloudWatch #JSONLogging #Serverless #AWSUpdates #TechNews #AWSLambda #LoggingControls #DevOps #CloudComputing #AWSGovCloud

Datadog, Inc. has announced the launch of Datadog Kubernetes Autoscaling, a feature that automates resource optimization and scales Kubernetes environments using real-time and historical metrics. . This makes Datadog the first observability vendor to offer direct Kubernetes environment adjustments from its platform. . Traditionally, overprovisioning resources to avoid infrastructure issues has led to substantial wasted compute and increased cloud costs, with 83% of container costs from idle resources, as per Datadog's State of Cloud Costs 2024 report. . The new autoscaling feature continuously monitors and adjusts Kubernetes resources, ensuring cost savings, optimal performance, and improved ROI. . It allows teams to balance cost control and user experience through intelligent automation, offering a unified platform for observability, security, and resource management. . Datadog Kubernetes Autoscaling is now in beta. ----- To learn more, please visit: 👉https://lnkd.in/gFZ_MAfX. . . . . . #avmconsulting #Datadog #Kubernetes #CloudComputing #Autoscaling #CloudOptimization #ResourceManagement #DevOps #CloudCosts #TechInnovation #Containerization #CloudInfrastructure #TechNews #KubernetesAutoscaling #CloudPerformance #ITOptimization #CloudSecurity #TechUpdate #CloudNative #EnterpriseTech #ITAutomation

The Los Angeles Unified School District (LAUSD) confirmed a data breach involving its Snowflake account, where student and employee data was stolen. . The breach was part of a larger attack by UNC5537 (a financially motivated threat actor group identified by Mandiant), who exploited accounts lacking multi-factor authentication. . The stolen data, including personal and academic information, was put up for sale on hacker forums by 'Sp1d3r' for $150,000. Another threat actor, 'Satanic,' also sold different LAUSD data earlier. Despite the breach, LAUSD's internal systems were not compromised. . Investigations with the FBI and CISA are ongoing. All associated individuals are advised to stay vigilant against potential phishing attempts using their exposed data. . . . . #AVMConsulting #LAUSD, #DataBreach, #CyberSecurity, #Snowflake, #StudentData, #EmployeeData, #Ransomware, #CyberAttack, #DataProtection, #HackerNews

Amazon Interactive Video Service (IVS) Real-Time Streaming allows you to create interactive video experiences. It now supports individual participant recording, saving each participant's video or audio separately to Amazon S3, in addition to the existing composite recording feature. . This feature incurs no extra cost, though standard Amazon S3 fees apply. Amazon IVS is a managed live streaming solution, designed for easy setup and optimized for global video ingest and delivery. . It provides low-latency streaming, making it ideal for interactive applications. For availability, refer to the AWS region table. . . . . #avmconsulting #AmazonIVS, #RealTimeStreaming, #InteractiveVideo, #LiveStreaming, #VideoRecording, #AmazonS3, #TechInnovation, #LiveVideo, #AWS, #CloudComputing

AWS has announced the general availability of Cargo support in CodeArtifact, enabling developers to store and manage Rust libraries (crates) within CodeArtifact repositories. Rust, a systems programming language known for its performance and safety, uses libraries called crates to distribute reusable code. . Cargo, the package manager for Rust, facilitates the publishing and downloading of these crates. Developers can configure CodeArtifact to fetch crates from crates.io, the central repository for Rust packages. . When connected to a CodeArtifact repository, Cargo automatically retrieves and stores requested crates from crates.io. This integration allows developers to access both private first-party crates and public third-party crates from a single source. . . . . #avmconsulting #AWS #CodeArtifact #RustLang #Cargo #RustProgramming #Crates #PackageManager #CloudDevelopment #DevOps #SoftwareDevelopment #AWSUpdate #CloudComputing #ProgrammingLanguages #RustCommunity #TechNews #CloudStorage #DependencyManagement #AWSCodeArtifact #RustCargo

The Biden administration has announced a ban on Kaspersky antivirus software, giving US companies and consumers until September 29, 2024, to switch to alternative security software. . The Department of Commerce's Bureau of Industry and Security (BIS) prohibits Kaspersky Lab, its affiliates, and subsidiaries from providing antivirus and cybersecurity services in the US. . This ban includes the sale of Kaspersky products and the distribution of updates. Secretary of Commerce Gina Raimondo highlighted national security concerns, citing Russia's potential to exploit Kaspersky for cyber espionage. . The BIS added three Kaspersky-related entities to the Entity List for alleged Russian government cooperation. While individuals can still use Kaspersky at their own risk, the government will not take legal action against them. . . . . #avmconsulting #Kaspersky #KasperskyBan #CyberSecurity #NationalSecurity #BidenAdministration #USCyberDefense #DataProtection #CyberThreats #AntivirusBan #TechPolicy #SecurityUpdate #USCommerce #CyberEspionage #SoftwareSecurity #CyberSafety

Amazon Simple Email Service (SES) now allows email sending events to be delivered to Amazon EventBridge. . This enables easier routing of notifications, such as bounces and complaints, to any EventBridge-supported service. . Customers can use EventBridge rules to filter and process events for tasks like contact list updates and deliverability analytics. Previously, SES could only send events to limited services like CloudWatch and SNS, requiring extra steps to route events elsewhere. . Now, sending events can be directed to any service supported by EventBridge, simplifying workflow integration. This update is available in all AWS regions where SES is supported. For details, refer to the SES delivery events documentation. . . . . #avmconsulting #AmazonSES #EventBridge #AWS #EmailTracking #CloudIntegration #EmailNotifications #WorkflowAutomation #DeliverabilityAnalytics #CloudServices #TechUpdate #AWSRegions #EventRouting #CustomWorkflows #EmailDeliverability #CloudComputing

Amazon Inspector now integrates with Amazon CodeCatalyst and GitHub actions for container image scanning, enabling customers to detect software vulnerabilities within their CI/CD tools and enhance security early in the software development lifecycle. . This integration adds to Inspector’s existing support for Jenkins and TeamCity, allowing it to work seamlessly with CI/CD tools across AWS, on-premise environments, and hybrid clouds. . Amazon Inspector, a vulnerability management service, scans AWS workloads for software and code vulnerabilities, as well as unintended network exposure. It also scans container images and archives, such as zip and TAR, directly from local developer machines. . This feature is available in all commercial and AWS GovCloud (US) Regions where Amazon Inspector is offered. . . . . #avmconsulting #AmazonInspector #ContainerSecurity #CI/CD #CodeCatalyst #GitHubActions #VulnerabilityManagement #SoftwareDevelopment #DevOps #AWS #SecurityScanning #JenkinsIntegration #TeamCityIntegration #HybridClouds #AWSGovCloud #ContainerScanning #NetworkSecurity

AVM Consulting excels at implementing Workday Financials with Prism for complex systems. Our tailored solutions ensure your operations are ready for tomorrow’s challenges. We create holistic architecture that aligns with your DevSecOps strategy and provides a complete view across clouds and on-prem systems.  Learn More 👉 https://lnkd.in/gw922W-s #DevSecOps #WorkdayPrism